ThreatFox IOC Database
You are viewing the ThreatFox database entry for ip:port 37.120.198.172:37625.
Database Entry
| IOC ID: | 1744432 |
|---|---|
| IOC: | 37.120.198.172:37625 |
| IOC Type : | ip:port |
| Threat Type : | botnet_cc |
| Malware: | NjRAT |
| Malware alias: | Bladabindi, Lime-Worm |
| Confidence Level : | Confidence level is high (100%) |
| Is compromised? : | False |
| ASN: | AS9009 M247 |
| Country: |  RO |
| First seen: | 2026-02-11 04:52:19 UTC |
| Last seen: | 2026-02-13 02:51:25 UTC |
| UUID: | 497bb8e2-06ee-11f1-a068-42010aa4000a |
| Reporter |  Neiki |
| Reward | 5 credits from ThreatFox |
| Tags: | AUTO-REG AUTO-STARTUP Bladabindi defense_evasion discovery njrat PACKER persistence |
| Reference: | https://www.threat.rip/file/642b9fcacea03217bd27d4f59ed906cd4d74308631a5c7cc6d97e2244d3ab2cc/config |